Enterprise Networking and Security Assignment Example | Topics and Well Written Essays - 3000 words

Enterprise Networking and Security - Assignment Example1 Introduction It has been concluded by some experts that the year 2012 is considered to be the worst year in terms of computer network security measures measure breaches (Schirick 2012). Likewise, the year that has not even passed the half year mark, some of the frontmost companies were sufferers of network security breaches resulting in massive losses (Schirick 2012). However, the news buzz solo highlights Sony and Citibank to be victims of network security breaches, as these companies are popular among the public. The different sides of the picture highlights organizations of all sizes are affected by the consequences of network security breaches. Likewise, it can be concluded that network security risks are continuously evolving, modifying and growth at a rapid pace. Organizations normally install a firewall and even intrusion detection systems that triggers alerts of whatever suspicious activity, as these two compon ents only covers the technical domain and not the human and physical domain. The current network scenario is utilizing a Virtual Private Connection that is connecting one or more sites. However, the VPN connection is in addition entitled to allow internet traffic on the same dedicated line from the Internet Service Provider. Moreover, the current network only utilizes a bingle firewall that is located at the main campus of the university. It concludes that the rest of the two remote sites are only protected via a simple Network address translation engage that is incorporated in a DSL modem. Moreover, there are no advanced security appliances such as Intrusion detection systems for analyzing and monitoring any suspicious activity that may possibly become a threat to the Universitys computer network. Moreover, there is no patch management for updating security patches in the workstations connected to the network. There are no indications of hardening servers for instance, email se rver, application server, centralized server and database server must be hardened and postulate physical protection as well. 2 Security Vulnerabilities The current network security vulnerabilities will be accessed in three categories i.e. logical security, internal security and external security. As far as logical security is concerned, we can see that the fig 1.1 demonstrates a firewall, Microsoft Internet Security and Acceleration (ISA) server and a domain controller with Microsoft Active Directory. The three categories for network vulnerabilities are categorized as below 2.1 Logical Vulnerabilities The current logical controls for protecting information assets inside the network are active Microsoft Active directory, ISA server and a Firewall. The Microsoft active directory is not primarily a security control, as it does not mitigate any risks associated with viruses, worms, Trojans, phishing, spam, denial of service attacks etc. however, it provides a secure administration of u ser profiles and File sharing features. File sharing threats are spreading on a rapid pace, as every now and then, new file sharing technologies are getting being developed and in demand. Controls will not only provide value from all network based services, but will also augment productivity for the organization in terms of revenue, customer devotion and competitive advantage. Workgroup based environment is not centralized. For instance,